Identity and Access Specialist

Job Description:

• With our team expanding to over 6,000 employees, scaling and securing our identity management systems has become one of our most exciting challenges. Roles in our internal system, SailPoint, are a key element of access automation. They allow for fast, efficient assignment of permissions to new employees while ensuring top-notch control over data security.

• As an Identity and Access Specialist, you will play a crucial role in streamlining access management, enhancing security, and driving automation across all departments to improve operational efficiency at Allegro.

#Goodtobehere means that:

• You will join a team you can count on - we work with top-class specialists who have knowledge- and experience-sharing in their DNA.

• You will love our level of autonomy in team organization, the space for continuous development, and the opportunity to try new things.

• You get to choose which technology solves the problem and you are responsible for what you create.

• You will value our Developer Experience and the full platform of tools and technologies that make creating software easier. We rely on an internal ecosystem based on self-service and widely used tools such as Kubernetes, Docker, Consul, GitHub, and GitHub Actions. Thanks to this, you can contribute to Allegro from your very first days on the job.

• You will be equipped with modern AI tools to automate repetitive tasks, allowing you to focus on developing new services and refining existing ones (also leveraging AI support).

• You will create solutions that will be used (and loved!) by your friends, family and millions of our customers.

• You will meet the Allegro Scale, which starts with over 1000 microservices, an open-source data bus (Hermes) with 300K+ rps, a Service Mesh with 1M+ rps, tens of petabytes of data, and production-used machine learning.

• You will become part of Allegro Tech - We speak at industry conferences, cooperate with tech communities, run our own blog (it's been over 10 years!), record podcasts, lead guilds, and we organize our own internal conference - the Allegro Tech Meeting. We create solutions we love (and can) to talk about!

• Send us your CV and... see you at Allegro!

This is the right job for you if you:

• Have a strong interest in Identity and Access Management (IAM) and want to develop your career in this field.

• Possess excellent cooperation and communication skills to effectively determine team permissions with managers.

• Are detail-oriented and focused on ensuring compliance with audit and security requirements (including the principle of least privilege).

• Can create clear documentation and operational procedures.

• Know English at a minimum B2 level.

• An additional plus would be:

• Basic knowledge of Active Directory (AD) and Microsoft Entra ID environments.

• Ability to write PowerShell scripts to automate simple, everyday tasks.

In your daily work you will handle the following tasks:

• Creating and developing roles: Building, managing, and optimizing access profiles and roles tailored to specific departments, expanded with attributes such as Company or Position.

• Workflow creation: Designing and implementing workflows within IAM systems.

• Stakeholder cooperation: Assisting business and role owners during permission verification campaigns and collaborating with managers to approve role changes.

• Maintenance and reviews: Conducting regular role reviews and monitoring usage within the organization to reduce excessive access.

• Automation: Writing PowerShell scripts to automate manual tasks and accelerate the access assignment process.

• Documentation: Creating and updating procedures and documentation related to IAM practices.

• Main challenges ahead of you:

• Implementing complex integrations between myLuna and external services (e.g., Genesys, Salesforce, IPA).

• Supporting business and project owners in various IAM-related initiatives across the company.

• Constantly improving systems to decrease maintenance efforts through new procedures and automation.